CVE-2026-31645 PUBLISHED

net: lan966x: fix page pool leak in error paths

Assigner: Linux
Reserved: 09.03.2026 Published: 24.04.2026 Updated: 24.04.2026

In the Linux kernel, the following vulnerability has been resolved:

net: lan966x: fix page pool leak in error paths

lan966x_fdma_rx_alloc() creates a page pool but does not destroy it if the subsequent fdma_alloc_coherent() call fails, leaking the pool.

Similarly, lan966x_fdma_init() frees the coherent DMA memory when lan966x_fdma_tx_alloc() fails but does not destroy the page pool that was successfully created by lan966x_fdma_rx_alloc(), leaking it.

Add the missing page_pool_destroy() calls in both error paths.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 11871aba19748b3387e83a2db6360aa7119e9a1a to 73e940c4249dc5ec6422d1fae535d192fb125955 (excl.)
  • affected from 11871aba19748b3387e83a2db6360aa7119e9a1a to 22e1ee9f22b5c3bb702bb6d4167d770002a85b2b (excl.)
  • affected from 11871aba19748b3387e83a2db6360aa7119e9a1a to 4941e234cfd67ac911fb259642b453f9f76aac41 (excl.)
  • affected from 11871aba19748b3387e83a2db6360aa7119e9a1a to 076344a6ad9d1308faaed1402fdcfdda68b604ab (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 6.2 is affected
  • unaffected from 0 to 6.2 (excl.)
  • unaffected from 6.12.82 to 6.12.* (incl.)
  • unaffected from 6.18.23 to 6.18.* (incl.)
  • unaffected from 6.19.13 to 6.19.* (incl.)
  • unaffected from 7.0 to * (incl.)

References